These services focus on managing end-to-end security for the remote workforce, including managing user access to cloud services and on-premises applications using modern management capabilities for all devices, configuration of Azure AD, MFA, conditional access and third-party IAM integrations.

Scope of Services:

• Access, implement and enhance VPN Services, integrate VPN with AD
• Connect the apps with Azure AD
• Automate user provisioning
• Implement conditional access
• Enabling self-service password reset
• Enable multifactor authentication
• Extend secure access to business partners and customers
• Manage and protect apps using Intune for temporary access
• Integrate third-party IAM solutions such as Okta
• Implement Group Policy for Microsoft Defender
• Provide security assessment, reporting and remediation for Microsoft Office 365 and File shares

Ensuring code security manually is cumbersome and time-consuming for the typically massive code repositories/branches/projects maintained on Git servers. Git-Hub ensures adherence to best coding practices through automated scanning of the repositories used by developers. It also provides reports on secret key usage and credential leaks in code checked-in by developers.

Scope of Services:

• Implementation of solution and configuration/customization according to customer needs
• Proactive and on-demand scanning of repositories, including GitHub, Bitbucket, GitLab and CodeCommit
• Scanning of multiple repositories, including their respective branches and Commit history
• Detailed reports and automated e-mail alerts
• Scalability
• Integration with service management tools (Jira, ServiceNow); (independent SOW based on requirements)
• Integration with CI-CD build automation tools (Jenkins, Bamboo); (independent SOW based on requirements)

These services offer planning, design, and implementation of the endpoint security solution with a central orchestration server managing the endpoints. All of this within a comprehensive, collaborative protection framework comprising traditional and advanced defense techniques.

Scope of Services:

• Implementation, migration and BAU support from McAfee, Symantec, and Trend Micro products
• Neutralize threats with a dynamic, integrated solution (Orchestration Server, Endpoint security, Active response, Threat intelligent exchange and Web protection)
• Configure behavioral and machine learning-based protection
• Dynamically share threat intelligence with endpoint, network and web
• Advanced live hunting capability across all endpoints and the flexibility to set traps and remediate malware - all customized for your environment
• New user workflows to reduce the number of clicks and a centralized user interface to provide more visibility and information for faster, more effective, endpoint security management

Security awareness and an effective security framework throughout the SDLC are the most important aspects of SDLC security integration. This service provides the design and implementation toolset, framework and processes for customers - from configuring code repositories to automated deployments, including security scanning and testing for each sprint of the agile development framework.

Scope of Services:

• Assessment of existing SDLC processes and toolsets
• Design and conduct security awareness programs
• Create DevOps architecture for faster rollout
• Achieve infrastructure automation by automating build/release process
• Create on-demand cloud servers for greater flexibility
• Define threat modelling framework
• Design and implement DevSecOps toolset (Jenkins, Bamboo, Artifactory, Veracode)
• Set up project plans, epics, stories (product backlog)
• Automate security testing (SAST, DAST) and error monitoring
• Provide a detailed security report and post for every sprint
• Create a roadmap for implementation of the compliance framework